Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/f501f6-1702-48d3-8027-96b8691f5260/1/nGdKYR1svWhbiqrcs20Z9yiqfgI.roa
File: nGdKYR1svWhbiqrcs20Z9yiqfgI.roa (raw, json)
Hash identifier: V8IZbWDXNpoFf99prLQr7G1VCP+KYLItjQnqBBuvfC0=
Subject key identifier: 9C:67:4A:61:1D:6C:BD:68:5B:8A:AA:DC:B3:6D:19:F7:28:AA:7E:02
Certificate issuer: /CN=15d1ff6bec9fbcb89e950a3a01ef2d686f0e7a31
Certificate serial: 0BA91D14
Authority key identifier: 15:D1:FF:6B:EC:9F:BC:B8:9E:95:0A:3A:01:EF:2D:68:6F:0E:7A:31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FdH_a-yfvLielQo6Ae8taG8OejE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/f501f6-1702-48d3-8027-96b8691f5260/1/nGdKYR1svWhbiqrcs20Z9yiqfgI.roa
Signing time: Wed 16 Feb 2022 08:53:25 +0000
ROA not before: Wed 16 Feb 2022 08:53:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 4755
IP address blocks: 185.150.216.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 195632404 (0xba91d14)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15d1ff6bec9fbcb89e950a3a01ef2d686f0e7a31
Validity
Not Before: Feb 16 08:53:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9c674a611d6cbd685b8aaadcb36d19f728aa7e02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:fb:01:5a:fb:a9:92:f7:08:f4:3e:e9:88:14:
31:8f:c2:16:15:01:b8:92:88:88:38:c1:1a:f1:b9:
e6:b9:e3:6f:85:7f:dc:46:28:fd:aa:aa:6d:31:99:
29:05:04:a7:66:66:5a:42:36:06:8e:45:94:5a:14:
e7:3b:1b:ec:71:3b:d3:18:59:a3:73:e1:28:3f:f1:
cd:25:a5:0f:bb:21:f7:3d:f7:97:94:b6:4d:9c:f5:
f7:c7:24:12:1f:23:80:ce:db:fa:e0:77:b2:6a:09:
e4:16:aa:0e:1a:11:9c:0b:65:9a:aa:42:8a:4a:91:
d2:6b:8d:b2:b9:ad:77:d7:a5:bc:ca:91:b5:a5:07:
2f:e9:92:28:4f:ae:7a:f6:b8:e2:8d:cf:51:dd:19:
f2:5c:81:d0:73:6c:e3:db:32:b0:81:a6:b1:5a:bc:
4e:59:84:2a:01:f7:ab:fd:ca:af:6a:be:d0:df:7b:
ed:eb:a1:b0:c6:24:d5:c9:d4:1c:53:6e:cf:bd:32:
48:33:85:e8:79:22:25:bf:93:d7:37:3f:44:fe:5f:
22:a1:62:3b:2a:16:2b:5d:88:df:d5:ab:a2:df:4d:
e5:0c:97:a4:76:dd:50:70:39:b1:99:43:49:31:9f:
39:56:87:0d:4d:d7:96:f9:66:9d:2e:4f:dc:ec:7c:
09:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:67:4A:61:1D:6C:BD:68:5B:8A:AA:DC:B3:6D:19:F7:28:AA:7E:02
X509v3 Authority Key Identifier:
keyid:15:D1:FF:6B:EC:9F:BC:B8:9E:95:0A:3A:01:EF:2D:68:6F:0E:7A:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FdH_a-yfvLielQo6Ae8taG8OejE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/f501f6-1702-48d3-8027-96b8691f5260/1/nGdKYR1svWhbiqrcs20Z9yiqfgI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/f501f6-1702-48d3-8027-96b8691f5260/1/FdH_a-yfvLielQo6Ae8taG8OejE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.150.216.0/22
Signature Algorithm: sha256WithRSAEncryption
10:59:28:0f:9b:22:3a:5d:bc:d6:2b:06:4f:d9:a1:fd:a3:fc:
70:5f:e8:e6:e7:56:60:45:8d:48:d4:50:bf:96:ce:36:e7:b3:
a9:46:ac:0a:d3:df:05:05:04:68:ff:ac:d3:28:ba:3c:7e:ea:
a3:9e:a8:15:73:0d:f1:d9:e2:76:bf:2f:a9:ab:59:6c:0e:fe:
f4:d0:20:7e:a6:f8:30:29:c9:0d:9e:a5:ce:82:c8:2e:e8:eb:
cb:54:84:e0:80:d1:d3:e9:d1:21:c8:00:3a:cd:f2:7c:ac:a8:
c0:ab:39:06:cf:3f:db:59:30:ee:dc:64:d3:be:e6:fa:5d:c6:
d5:85:0e:b8:59:82:99:b4:d2:49:09:16:cd:fc:fa:d6:8f:6c:
94:b1:3c:c8:21:ce:b7:4a:91:f4:d2:41:75:fd:0e:c3:a1:35:
0d:49:6f:7f:ca:b0:ec:bb:7b:df:1c:5f:02:76:60:f2:56:8b:
f5:50:bb:70:1a:67:98:05:1f:70:f8:40:d2:82:67:68:43:77:
e3:c8:31:75:30:ed:32:ed:8d:c9:71:93:a8:81:97:87:c3:b4:
62:cb:e9:54:28:93:0a:1a:27:dc:63:13:b3:1e:f9:36:18:58:
ab:fb:ab:a7:1e:da:21:8b:b2:83:28:c0:06:ec:84:25:13:f1:
ed:2d:e9:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:33 2023 by rpki-client on console-ams.rpki-client.org